UbuntuUpdates.org

Package "moin"

Name: moin

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Python clone of WikiWiki - library

Latest version: 1.9.7-1ubuntu2.2
Release: trusty (14.04)
Level: updates
Repository: main

Links



Other versions of "moin" in Trusty

Repository Area Version
base main 1.9.7-1ubuntu2
security main 1.9.7-1ubuntu2.2

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 1.9.7-1ubuntu2.2 2018-10-16 16:06:27 UTC

  moin (1.9.7-1ubuntu2.2) trusty-security; urgency=medium

  * SECURITY UPDATE: XSS in GUI editor
    - debian/patches/CVE-2017-5934.patch: fix in MoinMoin/action/fckdialog.py.
    - CVE-2017-5934

 -- <email address hidden> (Leonidas S. Barbosa) Mon, 15 Oct 2018 13:40:09 -0300

Source diff to previous version
CVE-2017-5934 Cross-site scripting (XSS) vulnerability in the link dialogue in GUI ...

Version: 1.9.7-1ubuntu2.1 2016-11-23 20:06:46 UTC

  moin (1.9.7-1ubuntu2.1) trusty-security; urgency=medium

  * SECURITY UPDATE: XSS in attachment dialogue
    - debian/patches/CVE-2016-7146.patch: properly escape page_name in
      MoinMoin/action/fckdialog.py.
    - CVE-2016-7146
  * SECURITY UPDATE: XSS in link dialogue
    - debian/patches/CVE-2016-9119.patch: properly escape strings in
      MoinMoin/action/fckdialog.py.
    - CVE-2016-9119

 -- Marc Deslauriers <email address hidden> Tue, 22 Nov 2016 07:53:09 -0500

CVE-2016-7146 MoinMoin 1.9.8 allows remote attackers to conduct "JavaScript injection" attacks by using the "page creation or crafted URL" approach, related to a "
CVE-2016-9119 XSS in GUI editor's link dialogue



About   -   Send Feedback to @ubuntu_updates